vault0
Security suite for OpenClaw agents.
Setup & Installation
Install command
clawhub install dlhugly/vault0If the CLI is not installed:
Install command
npx clawhub@latest install dlhugly/vault0Or install with OpenClaw CLI:
Install command
openclaw skills install dlhugly/vault0or paste the repo link into your assistant's chat
Install command
https://github.com/openclaw/skills/tree/main/skills/dlhugly/vault0What This Skill Does
Vault-0 encrypts API keys with AES-256-GCM and injects them ephemerally at agent launch. It monitors agent activity in real time via WebSocket and can enforce security policies through a local proxy. Includes an optional EVM wallet for x402 micropayments, with private keys stored exclusively in macOS Keychain.
Unlike environment variable managers or secret scanning tools, Vault-0 combines encrypted storage, real-time behavioral monitoring, and policy enforcement in a single local app with no external network calls after install.
When to Use It
- Encrypting plaintext API keys currently stored in .env files
- Watching agent tool calls and thinking states as they happen
- Blocking agent requests to unauthorized domains
- Auditing agent actions with exportable SHA-256 receipts
- Handling machine-to-machine micropayments without exposing wallet keys
Example Workflow
Here's how your AI assistant might use this skill in practice.
User asks: Encrypting plaintext API keys currently stored in .env files
- 1Encrypting plaintext API keys currently stored in .env files
- 2Watching agent tool calls and thinking states as they happen
- 3Blocking agent requests to unauthorized domains
- 4Auditing agent actions with exportable SHA-256 receipts
- 5Handling machine-to-machine micropayments without exposing wallet keys
Security suite for OpenClaw agents.
Security Audits
These signals reflect official OpenClaw status values. A Suspicious status means the skill should be used with extra caution.